Comment by TruthWillHurt
2 years ago
Very cool, but this is a security anti-pattern.
Having the auth, db and file server in the same service.. an attacker doesn't even need lateral traversal or privilege escalation once inside..
2 years ago
Very cool, but this is a security anti-pattern.
Having the auth, db and file server in the same service.. an attacker doesn't even need lateral traversal or privilege escalation once inside..
There’s something to be said about drastically reducing your threat surface too. Locking down 1 server is easier than locking down a fleet. You can still have security in depth inside your server.